[Forgot Password]
Login  Register Subscribe

24003

 
 

131517

 
 

106904

 
 

909

 
 

84902

 
 

134

Paid content will be excluded from the download.


Download | Alert*
OVAL

Turn off Data Execution Prevention for Explorer

ID: oval:org.secpod.oval:def:40329Date: (C)2017-04-25   (M)2018-04-10
Class: COMPLIANCEFamily: windows




Disabling data execution prevention can allow certain legacy plug-in applications to function without terminating Explorer. Vulnerability: Data Execution Prevention is an important security feature supported by Explorer that helps to limit the impact of certain types of malware. Counter Measure: We recommend that you disable this policy setting unless you have to support legacy business applications that do not support it. Potential Impact: Enabling this policy setting may allow certain legacy plug-in applications to function. Disabling this policy setting will ensure that Data Execution Prevention blocks certain types of malware from exploiting Explorer. Fix: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\File Explorer\Turn off Data Execution Prevention for Explorer (2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\Explorer!NoDataExecutionPrevention

Platform:
Microsoft Windows Server 2016
Reference:
CCE-45876-0
CPE    1
cpe:/o:microsoft:windows_server_2016:::x64
CCE    1
CCE-45876-0
XCCDF    5
xccdf_org.secpod_benchmark_general_Windows_Server_2016
xccdf_org.secpod_benchmark_NIST_800_53_r4_Windows_Server_2016
xccdf_org.secpod_benchmark_HIPAA_45CFR_164_Windows_Server_2016
xccdf_org.secpod_benchmark_SecPod_Windows_Server_2016
...

© 2013 SecPod Technologies